Hey all! I'm working with the Kicksecure project, and we're currently running into Bug #1032375 [1] (an "error: bad shim signature" error being shown by GRUB when attempting to run Memtest86+ while Secure Boot is enabled). From reading through the linked Github bug report [2], it looks like some sort of security review is needed for this to be possible. What exactly is the review that's needed for this to move forward? Is it something I could help with? I'm not good with assembly code, but I'm decent with C, and would be happy to at least try to give Debian's memtest86+ code a security review if that's what's being requested. If that's not what's being requested, is there anything an external contributor could do to help get this moving forward? Thanks for taking a look at this! Aaron [1]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032375 [2]: https://github.com/rhboot/shim-review/issues/314
Attachment:
pgpdFWtEdzAbW.pgp
Description: OpenPGP digital signature